| OLD | NEW |
|---|
| (Empty) | |
| 1 .\" Copyright (C) 2005 International Business Machines Corporation |
| 2 .\" |
| 3 .de Sh \" Subsection |
| 4 .br |
| 5 .if t .Sp |
| 6 .ne 5 |
| 7 .PP |
| 8 \fB\\$1\fR |
| 9 .PP |
| 10 .. |
| 11 .de Sp \" Vertical space (when we can't use .PP) |
| 12 .if t .sp .5v |
| 13 .if n .sp |
| 14 .. |
| 15 .de Ip \" List item |
| 16 .br |
| 17 .ie \\n(.$>=3 .ne \\$3 |
| 18 .el .ne 3 |
| 19 .IP "\\$1" \\$2 |
| 20 .. |
| 21 .TH "tcsd.conf" 5 "2006-07-14" "TSS 1.1" |
| 22 .ce 1 |
| 23 TCG Software Stack |
| 24 .SH NAME |
| 25 tcsd.conf \- configuration file for the trousers TCS daemon. |
| 26 .SH "DESCRIPTION" |
| 27 .PP |
| 28 This file, by default |
| 29 .IR /etc/tcsd.conf |
| 30 is read by the trousers TCSD daemon, tcsd (see tcsd(8)). The tcsd.conf file |
| 31 that is installed by trousers contains all the default options, commented out. |
| 32 .SH "OPTIONS" |
| 33 .PP |
| 34 .BI port |
| 35 The port that TCSD will listen on for connections, local and remote, from |
| 36 applications. |
| 37 |
| 38 .BI num_threads |
| 39 The maximum number of threads that the TCSD will spawn simultaneously to service |
| 40 applications. After |
| 41 .BI num_threads |
| 42 threads have been spawned, any application that attempts to connect to the TCSD |
| 43 will receive an error. |
| 44 |
| 45 .BI system_ps_file |
| 46 The location of the system persistent storage file. The system persistent |
| 47 storage file holds keys and data across restarts of the TCSD and system |
| 48 reboots. |
| 49 |
| 50 .BI firmware_log_file |
| 51 Path to the file containing the current firmware PCR event log data. The |
| 52 interface to this log is usually provided by the TPM device driver. |
| 53 |
| 54 .BI kernel_log_file |
| 55 Path to the file containing the current kernel PCR event log data. By default, |
| 56 this data will be parsed in the format provided by the Integrity Measurement |
| 57 Architecture LSM. |
| 58 |
| 59 .BI firmware_pcrs |
| 60 A list of PCR indices that are manipulated only by the system firmware and |
| 61 therefore are not extended or logged by the TCSD. Applications that call |
| 62 Tcsi_PcrExtend on PCRs listed here will receive an error. |
| 63 |
| 64 .BI kernel_pcrs |
| 65 A list of PCR indices that are manipulated only by the kernel and therefore |
| 66 are not extended or logged by the TCSD. Applications that call Tcsi_PcrExtend |
| 67 on PCRs listed here will receive an error. |
| 68 |
| 69 .BI platform_cred |
| 70 Path to the platform credential for your TPM. Your TPM manufacturer may have |
| 71 provided you with a set of credentials (certificates) that should be used when |
| 72 creating identities using your TPM. When a user of your TPM makes an identity, |
| 73 this credential will be encrypted as part of that process. See the 1.1b TPM Main |
| 74 specification section 9.3 for information on this process. |
| 75 |
| 76 .BI conformance_cred |
| 77 Path to the conformance credential for your TPM. Your TPM manufacturer may have |
| 78 provided you with a set of credentials (certificates) that should be used when |
| 79 creating identities using your TPM. When a user of your TPM makes an identity, |
| 80 this credential will be encrypted as part of that process. See the 1.1b TPM Main |
| 81 specification section 9.3 for information on this process. |
| 82 |
| 83 .BI endorsement_cred |
| 84 Path to the endorsement credential for your TPM. Your TPM manufacturer may have |
| 85 provided you with a set of credentials (certificates) that should be used when |
| 86 creating identities using your TPM. When a user of your TPM makes an identity, |
| 87 this credential will be encrypted as part of that process. See the 1.1b TPM Main |
| 88 specification section 9.3 for information on this process. |
| 89 |
| 90 .BI remote_ops |
| 91 A list of TCS commands which will be allowed to be executed on this machine's |
| 92 TCSD by TSP's on non-local hosts (over the internet). By default, access to all |
| 93 operations is denied. |
| 94 |
| 95 .BI host_platform_class |
| 96 Determines the TCG specification of the host's platform class. This refers to |
| 97 one of the specifications contained in the TCG web site. The default is PC |
| 98 specification version 1.2 . |
| 99 |
| 100 .BI all_platform_classes |
| 101 Specifies all the TCG defined platforms associated with the host platform. The |
| 102 host_platform_class must not be defined here. By default, all platforms but |
| 103 the host platform are associated. |
| 104 |
| 105 .SH "EXAMPLE" |
| 106 .PP |
| 107 .IP |
| 108 .nf |
| 109 port = 30003 |
| 110 num_threads = 10 |
| 111 system_ps_file = /usr/local/var/tpm/system.data |
| 112 firmware_log_file = /proc/tpm/firmware_events |
| 113 kernel_log_file = /proc/tcg/measurement_events |
| 114 firmware_pcrs = 0,1,2,3,4,5,6,7 |
| 115 kernel_pcrs = 10,11 |
| 116 platform_cred = /usr/local/var/lib/tpm/platform.cert |
| 117 conformance_cred = /usr/local/var/lib/tpm/conformance.cert |
| 118 endorsement_cred = /usr/local/var/lib/tpm/endorsement.cert |
| 119 remote_ops = create_key,random |
| 120 host_platform_class = server_12 |
| 121 all_platform_classes = pc_11,pc_12,mobile_12 |
| 122 .fi |
| 123 .SH "SEE ALSO" |
| 124 .PP |
| 125 \fBtcsd\fR(8) |
| 126 .SH "AUTHOR" |
| 127 Kent Yoder |
| 128 .SH "REPORTING BUGS" |
| 129 Report bugs to <trousers-tech@lists.sf.net> |
| OLD | NEW |
|---|
Chromium Code Reviews
Issue 3581012:
Upgrade from trousers 0.3.3 to 0.3.6 and from testsuite 0.2 to 0.3. (Closed)
Base URL: ssh://git@gitrw.chromium.org:9222/trousers.git